At Security Risk Advisors (SRA), our collaboration with Cribl underscores our commitment to helping our clients improve their detection and response capabilities while managing costs. We go beyond merely distributing Cribl’s innovative solutions; we are experts in customizing and implementing these systems. Our approach is informed by a rich repository of use-cases from real clients, enabling us to effectively tailor solutions to meet specific client needs. This partnership is instrumental in our SCALR™ XDR solution, leveraging Cribl to provide a broad spectrum of benefits.

A Triad of Roles with Cribl: Reseller, Integrator, Innovator

SRA takes pride in serving three pivotal roles in our partnership with Cribl. As a reseller, we offer our clients the powerful tools developed by Cribl. As integrators, we implement these tools into diverse IT environments, ensuring seamless operation and alignment with security objectives. Finally, as innovators, we incorporate Cribl into our SCALR™ XDR solution as the essential foundation for log agility and cost-efficiency in our comprehensive XDR strategy.

Beyond Cost Savings: A Holistic Approach to Log Management

While cost reduction is a tangible benefit of deploying Cribl’s solutions, it merely scratches the surface of its capabilities. SRA uses Cribl for several functions critical to modern cybersecurity:

• Log Enrichment: We elevate the utility of log data by enhancing it with IOC data, threat intelligence, and contextual details, turning raw data into actionable insights.
• A Protocol Gathering Point: Cribl’s vast list of supported protocols and options allow it to receive data from nearly any log source – with much more versatility and customizability than native SIEM connectors.
• Log Source Health Monitoring: We achieve continuous oversight of log source health using Cribl’s built-in metrics combined with our own advanced statistical methods, for unprecedented reliability and uptime.
• Net Flow Analysis: Network flows are not left behind; we use Cribl to analyze and gain visibility into network traffic, aiding in hunting, threat detection, and response.

Cribl and SRA: Enhancing Cybersecurity with Precision Integrations

The collaboration between Security Risk Advisors and Cribl involves incorporating Cribl’s observability pipeline strategy with Microsoft Azure Data Explorer (ADX) and Sentinel. This collaboration helps direct security data more efficiently into Azure, enhancing the capabilities and insights provided by Sentinel.

Cribl’s ability to refine, enrich, and direct data forms a new foundation for integration of complex data architectures that once depended on the deployment of numerous agents. We can consolidate all telemetry sources into one powerful and flexible pipeline. We use ADX and Sentinel to not only cleanse and contextualize security data but to deliver it precisely to where it propels your security operations forward the most.

A Future-Focused Cybersecurity Approach

With this partnership, SRA enables a “security data pipeline” that is not just less noisy and more cost-effective but is also a proactive tool in your security arsenal, enhancing your security data management process.

Our recognized growth and innovation, reflected in our accolade as Cribl’s Global Growth Partner of the Year, is a direct result of the strategic integration of Cribl’s products within our solutions. This acknowledgment mirrors our pursuit to deliver unmatched service and sustained success to our clientele.

Embrace the next level of cybersecurity efficiency and sophistication with SRA and Cribl. Discover more about our partnership and the advantages it can bring to your organization by connecting with us at sra.io/cribl, or contact us here.

Joe Cicero Ethan Witherington

Joe Cicero

Director of Strategic Alliances |  Archive Bio

Joe is the Director of Strategic Alliances, a role that harnesses his extensive expertise in building strategic partnerships and navigating the tech landscape. Tasked with spearheading collaborations between SRA, Microsoft, Cribl, and other leading technology firms such as Amazon and Google, Joe plays a crucial role in developing co-sell strategies and enhancing SRA's service offerings. His efforts are instrumental in refining SRA’s Microsoft services collateral and establishing deep connections within Microsoft engineering communities to stay ahead of functional releases and unique value propositions.

Joe's journey to SRA is underpinned by a distinguished tenure at Microsoft, where he demonstrated his exceptional ability to lead diverse teams, manage complex projects, and drive significant growth. As a Principal PM Manager, he doubled product revenue for nascent MDR service offerings and was pivotal in developing product roadmaps for Microsoft Defender Experts, showcasing his adeptness in translating feedback into actionable insights. His experience extends to managing large-scale initiatives, such as enhancing educational device management and fostering community engagement within the education sector.

Before embarking on his corporate journey, Joe was a dedicated history teacher in the Rochester City School District, where he led technological transformation efforts and managed Google Workplace for Education. This unique blend of educational and tech industry experience enriches Joe's approach to strategic alliances at SRA, allowing him to leverage a deep understanding of both the operational and partnership-building aspects of the tech world. His role at SRA not only marks a continuation of a career characterized by innovation and leadership but also reflects a commitment to driving forward the company's mission to deliver cutting-edge security solutions.

• Joe Cicero

  PRESS RELEASE: Security Risk Advisors Recognized with Microsoft Verified Managed XDR Solution Status
• Joe Cicero

  SRA Earns Microsoft Identity and Access Management Specialization
• Joe Cicero

  Security Risk Advisors Earns Microsoft Solutions Partner Designation for Infrastructure (Azure)
• Joe Cicero

  How SRA’s Partnership with the Microsoft Intelligent Security Association (MISA) Will Benefit Its Clients
• Joe Cicero

  Celebrating a New Milestone: SRA Earns Microsoft Solutions Partner Designation for Modern Work!
• Joe Cicero

  Introducing Epic Monitoring for SCALR XDR: Elevating Healthcare Security
• Joe Cicero

  Applauding a Strategic Milestone: Microsoft and Cribl’s Alliance Enhances Data Management
• Joe Cicero

  Elevating Our Expertise: SRA Achieves Microsoft Solutions Partner Status in Data & AI
• Joe Cicero

  The Value of the Microsoft Partnership for Security Risk Advisors and Our Clients

Ethan Witherington

Sr. Consultant |  Archive Bio

Ethan Witherington is an innovative professional at Security Risk Advisors, specializing in unique and challenging projects that fall outside conventional resource pools. He excels in defining processes and enhancing efficiency for new service lines.

Ethan is currently focused on utilizing infrastructure-as-code to implement reliable cloud-based SOC systems for various clients. His expertise in this area ensures the seamless delivery of cutting-edge security solutions.

Ethan's diverse background includes setting up speaker systems for the band AJR, teaching fire safety to cub scouts, hammock camping in Colorado, and establishing and running multiple clubs at the Rochester Institute of Technology (RIT).